The Security Engineer III role at Amazon's Internal Audit Security team focuses on protecting customer data and enhancing security across Amazon's products and services. This position involves leading security audits, identifying vulnerabilities, and mentoring other security engineers. The team prioritizes independent assessments of security controls and emphasizes the importance of active testing in complex environments. The engineer will also leverage AI to improve audit capabilities and assess security controls related to AI/ML technologies.

• 5+ years of industry-based experience in security vulnerabilities identification, attack patterns, and remediation techniques.
• Bachelor's degree in Computer Science or a related field.
• 5+ years of scripting, programming, and security code review experience in common programming languages.
• Knowledge of at least two programming languages such as Scala, Java, Python, C/C++, or Go.
• Experience as a mentor, tech lead, or leading an engineering team.
• Experience using standard security assessment and penetration testing tools such as BurpSuite, Metasploit, and IDA Pro.
• Experience working directly with security and engineering teams.
• Strong written and verbal communication skills to present complex technical information clearly.
• Demonstrated ability to construct reusable security frameworks, runbooks, or rubrics for complex problem domains.
• Domain expertise in at least three areas such as security architecture, communication security, IAM, security assessment, cryptography, software development security, and reverse engineering.

• Lead independent security audits of Amazon systems, services, and infrastructure to assess the effectiveness of security controls.
• Identify security risks through penetration testing, design reviews, threat modeling, and code analysis.
• Investigate security control failures and drive root-cause resolution across team boundaries.
• Assess security controls around Amazon's adoption of AI/ML technologies to ensure secure customer experiences.
• Build reusable security frameworks, runbooks, and rubrics for repeatable assessments.
• Communicate security risk findings and recommendations to technical teams and senior leadership.
• Mentor and develop other security engineers while leading engagements across multiple teams.

• Employees at Amazon are often offered comprehensive health benefits—including multiple medical plan options (no pre-existing condition exclusions, 100% covered in-network preventive care), dental and vision plans, a 24/7 medical advice line from day one, expert second-opinion services, and broad mental-health support with several free counseling sessions (including pediatric). Financial wellness typically includes a 401(k) with company match (up to 2%), Restricted Stock Units (equity), FSAs, an emergency savings program, product and partner discounts, and even college-savings and home-purchase programs. Overall, the package is designed to support employees and their families’ health, finances, and day-to-day life.